Adapt ChangeLog

commit: a21e2a015b760122e5918a04245597953e950a64 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Thu Oct 19 09:13:35 2017 +0100
committer: Hanno Becker <hanno.becker@arm.com> Thu Oct 19 09:15:17 2017 +0100
tree: 125c1437c82255a129ed1bdda9c248ab402728cb
parent: 888071184c3247306ae170ee7d30d2554d230f13 [diff]
diff --git a/ChangeLog b/ChangeLog
index ded60d3..cef0e72 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -2,6 +2,13 @@
 
 = mbed TLS x.x.x branch released xxxx-xx-xx
 
+Security
+   * Make mbedtls_mpi_read_binary constant-time with respect to
+     the input data. Previously, trailing zero bytes were detected
+     and omitted for the sake of saving memory, but potentially
+     leading to slight timing differences.
+     Reported by Marco Macchetti, Kudelski Group.
+
 Features
    * Allow comments in test data files.
commit	a21e2a015b760122e5918a04245597953e950a64	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Thu Oct 19 09:13:35 2017 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Thu Oct 19 09:15:17 2017 +0100
tree	125c1437c82255a129ed1bdda9c248ab402728cb
parent	888071184c3247306ae170ee7d30d2554d230f13 [diff]